Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/N_B5FmDB2r6deDgboFSLMZNQS20.roa
File: N_B5FmDB2r6deDgboFSLMZNQS20.roa (raw, json)
Hash identifier: T+EmKsGDR9bRoDCj9VPvOARHSj7+Gr9s1ULiYpMGvrQ=
Subject key identifier: 37:F0:79:16:60:C1:DA:BE:9D:78:38:1B:A0:54:8B:31:93:50:4B:6D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 145B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/N_B5FmDB2r6deDgboFSLMZNQS20.roa
Signing time: Mon 10 Feb 2025 14:34:50 +0000
ROA not before: Mon 10 Feb 2025 14:34:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 203.74.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5211 (0x145b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=37F0791660C1DABE9D78381BA0548B3193504B6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:32:a0:87:01:cf:aa:38:dd:d4:6d:87:46:ca:
42:b0:51:60:b3:aa:aa:90:8b:01:44:6f:f9:43:ba:
c6:99:e8:1a:47:1e:a9:1b:f9:43:c9:f0:1a:f6:bd:
16:b9:17:76:cd:34:0b:df:e4:e2:fb:d2:41:07:24:
51:40:90:63:32:a0:d4:08:dd:eb:04:d8:59:5b:5d:
32:da:9e:6f:0d:42:ed:20:7d:86:d6:a1:b7:19:0e:
a8:8c:3c:42:5d:5b:21:d0:e1:21:28:31:36:18:f7:
24:3f:eb:34:c7:10:af:9b:d5:2e:c4:d7:9a:f5:9b:
81:7d:c4:5c:1e:06:ee:cd:29:bc:18:b8:0e:63:7a:
71:d5:75:52:27:c8:8a:60:8d:a8:d5:59:99:35:33:
80:9d:a6:ce:af:02:9c:92:c9:05:b4:d5:0f:1c:5c:
2f:b9:b2:b8:fa:f8:2b:5a:78:8a:6d:c4:8e:f8:f4:
32:2c:1f:e5:b9:df:36:93:4e:7e:8a:6a:d4:96:39:
ef:ba:d1:45:89:36:43:6d:13:cf:de:11:78:fd:3c:
69:e0:ba:72:23:fe:51:65:85:f6:2c:a3:62:99:e1:
5c:b8:00:bf:97:d5:e1:84:e8:65:ee:0e:af:69:50:
ea:67:71:ea:c5:f2:b3:e8:51:99:33:de:c1:18:02:
2b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F0:79:16:60:C1:DA:BE:9D:78:38:1B:A0:54:8B:31:93:50:4B:6D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/N_B5FmDB2r6deDgboFSLMZNQS20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.176.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:63:d7:b8:5e:00:dd:b3:df:83:1e:60:46:f3:73:82:23:2a:
68:14:0d:ab:0d:20:76:6d:c1:99:de:45:34:81:27:47:da:54:
37:c2:7f:13:6b:af:7d:c8:25:23:91:4b:e7:b2:46:40:22:2b:
c5:bf:9a:d9:a7:f0:58:e1:b1:0a:f7:a0:77:d0:37:57:d0:14:
7f:84:75:e1:8b:be:07:c6:cd:ff:35:60:fa:47:08:57:24:69:
18:a9:ba:a0:77:32:6e:b6:dc:2c:9e:55:88:07:4c:e9:79:5a:
ff:87:57:35:fa:26:c8:04:b0:ea:cf:17:5c:ed:85:e4:e9:af:
4f:06:62:58:8d:2c:fa:be:a2:7c:b4:ab:19:7c:e5:3f:20:21:
2d:c7:99:d3:a7:68:f0:f6:11:80:7b:82:b6:3e:ce:c8:fc:17:
dc:fb:5f:b3:0d:20:15:4a:eb:d9:28:bf:fd:7d:cb:b7:11:a3:
5c:0e:0f:24:d6:41:f1:6b:c6:ec:4f:74:f0:4c:25:f1:b7:5a:
74:75:b1:63:53:11:04:f4:e9:d0:6f:f3:bb:af:85:a0:e2:75:
da:f8:95:4b:d7:c8:85:e5:6e:fa:55:60:dd:72:44:1e:f6:ac:
ab:50:4e:1c:af:e4:ce:1c:2c:97:fc:e7:18:49:a6:8d:8c:68:
2c:38:97:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:18:15 2025 by rpki-client